CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity
11,029 Commits 24 Branches 119 Tags
a44448519bd9a4cb3cf03d73897e86a19780ca0d
Commit Graph

77 Commits

Author SHA1 Message Date
m0duspwnens
68ce7a902d insert instead of append 2021-03-17 09:14:19 -04:00
m0duspwnens
38a497932c https://github.com/Security-Onion-Solutions/securityonion/issues/3288 2021-03-16 16:36:35 -04:00
m0duspwnens
7e4d7a6985 drop icmp timestamp replies https://github.com/Security-Onion-Solutions/securityonion/issues/1704 2021-02-11 11:09:21 -05:00
m0duspwnens
b693373d8d change how we allow or disallow states to be run https://github.com/Security-Onion-Solutions/securityonion/issues/2679 2021-01-20 15:09:53 -05:00
m0duspwnens
ad45779978 fix duplicate state name for fw 2020-12-18 15:01:55 -05:00
m0duspwnens
4bbedfa027 put portgroup name in statename 2020-12-18 14:14:45 -05:00
m0duspwnens
09cc8ae1fb fail the state if it isnt in top 2020-09-09 16:48:50 -04:00
m0duspwnens
a229ae82ce only allow state to run if it is in top for the node 2020-09-02 16:15:52 -04:00
Josh Patterson
16592fcc1e makedirs if it doesn't exist 2020-06-11 12:55:30 -04:00
m0duspwnens
03c43da6f2 create iptables file if it doesnt exist - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/641 2020-06-10 17:19:03 -04:00
m0duspwnens
f89baff3d7 adding ability to assign hostgroup to single minion - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/641 2020-06-10 14:05:19 -04:00
m0duspwnens
15fd4de669 remove yamlized rules, update assigned hostgroups - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/641 2020-06-09 13:44:10 -04:00
m0duspwnens
accb3d536d add chain to iptables state - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/641 2020-06-09 13:30:24 -04:00
m0duspwnens
721f2682ac changes for firewall - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/641 2020-06-09 09:40:38 -04:00
m0duspwnens
5f9f86caa5 merge with dev and fix conflicts 2020-06-04 09:59:12 -04:00
Wes Lambert
b7d7747f65 allow syslog 2020-05-28 13:56:02 +00:00
Mike Reeves
8202344d01 Fix for Strelka 2020-05-18 17:28:26 -04:00
m0duspwnens
4e63477b98 Merge remote-tracking branch 'remotes/origin/dev' into issue/140 2020-05-15 15:21:03 -04:00
Mike Reeves
7e1016ff07 Update firewall rules to allow minions to connect 2020-05-15 13:59:07 -04:00
m0duspwnens
509188092c adding so-standalone state logic, add zeek pillar to so-standalone - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/140 2020-05-15 10:02:25 -04:00
m0duspwnens
1945c57b0d starting new fw format - issue/641 2020-05-07 18:22:23 -04:00
Mike Reeves
dd8627f9dd Initial Firewall State Simplification 2020-05-07 11:36:38 -04:00
Josh Brower
051f6d2310 Fleet pipeline fixes 2020-04-03 16:10:38 -04:00
Josh Brower
9bcba41882 Feature/Fleet-Standalone 2020-03-24 20:57:24 -04:00
Mike Reeves
9740b23b1d Fix Wazuh paths for logstash 2020-02-07 16:42:16 -05:00
m0duspwnens
306cc1127b heavynode 2020-01-29 12:56:25 -05:00
m0duspwnens
a39edad3f6 changes for multipipelines / mastersearch node - https://github.com/Security-Onion-Solutions/securityonion-saltstack/issues/124 2020-01-21 16:39:42 -05:00
Mike Reeves
5ead3a26b6 Rename Storage to Search Nodes 2019-12-17 15:32:43 -05:00
Mike Reeves
efd641f0df Rename Storage to Search Nodes 2019-12-17 13:43:37 -05:00
Mike Reeves
c83decc0a0 Helix - add firewall for mode helix 2019-12-10 14:44:10 -05:00
m0duspwnens
4874e540da changes for FireEye Helix integration 2019-12-09 17:18:12 -05:00
Wes Lambert
e364638a62 add Cyberchef 2019-11-12 22:50:00 +00:00
Josh Brower
b6c77ba695 Cortex - initial commit 2019-11-01 18:39:51 -04:00
Mike Reeves
32d1641b6e Firewall Module - Fix some docker iptables issues 2019-10-09 13:33:07 -04:00
Josh Brower
bc788a3d35 Playbook - initial commit 2019-09-24 20:09:20 -04:00
Mike Reeves
8804a43463 Firewall Module - Add so-allow 2019-07-23 10:08:09 -04:00
Mike Reeves
65ccef72b8 Firewall Module - Add 443 for sensoroni 2019-06-10 18:49:29 -04:00
Mike Reeves
c2f1bb919e Firewall Module - Add new beats port for hh traffic 2019-06-10 18:48:05 -04:00
Mike Reeves
5630da5998 Sensoroni Master - Add Initial files 2019-06-06 10:58:43 -04:00
Mike Reeves
89786c16c6 Fleet Module - Add some default firewall rules 2019-04-30 09:44:58 -04:00
Wes Lambert
28c0cda16b SOCtopus: Initial Commit 2019-03-15 02:40:02 +00:00
Mike Reeves
39ea1ad1ee Firewall Module - Add rules for hive 2019-03-08 13:07:11 -05:00
Mike Reeves
7e4264fa60 Firewall Module - Remove extra influxdb ports 2019-01-10 14:13:52 -05:00
Mike Reeves
6d5b9c46cf Firewall Module - Remove extra influxdb ports 2019-01-10 14:12:41 -05:00
Mike Reeves
4f0d204c21 Firewall Module - Removed permissions for analyst role 2019-01-10 14:07:13 -05:00
Wes Lambert
a662badc5b Firewall - Fix stuff for sensor 2018-12-13 23:52:15 +00:00
dlee35
fe56e171d4 add firewall rule option for osquery 2018-12-13 13:28:37 -05:00
Wes Lambert
75ed258d19 Firewall - Fix Wazuh IP logic for sensors 2018-12-13 17:57:22 +00:00
Wes Lambert
6cdf1ef857 Firewall - Add rules for Wazuh Manager 2018-12-11 19:44:32 +00:00
Mike Reeves
24cb7f4a14 Fleet Modules 2018-12-05 19:50:59 -05:00